AI systems are moving from experimentation into enterprise-critical operations. The question is no longer whether to govern them but how — without strangling innovation. *AI and IT Governance* provides a rigorous, immediately applicable answer: a unified framework that bridges classical IT governance (COBIT, ITIL, ISO/IEC 38500) with the demands of machine learning lifecycle management, EU AI Act compliance, and responsible AI deployment. Across 19 chapters and five parts, the monograph spans foundations, key components, implementation, real-world case studies, and the future of AI governance:

• Ethics & algorithmic bias — three case studies (healthcare, mortgage lending, content moderation) reveal where governance gaps form and how to close them; a dedicated section on dual-use AI capabilities and cybersecurity (Claude Mythos) rounds out the ethical frontier.
• Regulatory landscape — EU AI Act risk tiers, GDPR interaction, ISO/IEC 42001 conformity assessment, and an international comparison across major jurisdictions.
• Risk management — adversarial threats, model drift monitoring, and a risk portfolio approach calibrated to harm potential.
• Data governance — lineage, quality dimensions, feedback loops, and GDPR-compatible data-role assignments.
• Organisational model — role catalogue, RACI templates, three-lines-of-defence integration, and committee mandates ready for immediate use.
• AI project lifecycle — shift-left governance, quality gates G0–G5, change management, and structured decommissioning.
• Tools & MLOps — technology selection matrix covering open-source and commercial platforms.
• Personnel & culture — competency model, psychological safety, and incentive design for a sustainable governance mindset.
• ISO/IEC 42001 — AIMS implementation roadmap and clause-level mapping to the IKI-Gov reference model.
• IKI-Gov reference model — the book's core contribution: six governance domains × six lifecycle phases × six measurement points, with a companion open-source CLI assessment tool (presidio-hardened-ikigov-assess).

Why This Book

• Integrates strategy, law, ethics, data, and operations in one coherent model — no silo approach
• Regulation-aware as of Q1 2026 (EU AI Act, ISO/IEC 42001, GDPR)
• 43 schematic figures, workshop-ready checklists, and quality-gate templates for direct application
• IKI-Gov assessment tool freely available as open-source CLI

Target group

CIOs, CAIOs, and AI product owners seeking strategic clarity; compliance, legal, and data-protection teams navigating EU AI Act and GDPR obligations; data scientists and MLOps engineers who need governance context for their daily work; risk managers and internal auditors building AI-specific control frameworks; and graduate students in information management, business informatics, or law.

Vladimir Stantchev is professor of computer science at the SRH University Heidelberg, Campus Berlin, and principal engineer at PRESIDIO Group, Sofia, Bulgaria. He studied computer science at the Humboldt University in Berlin (master), the Technical University of Berlin (PhD), and at the University of California, Berkeley, USA (postdoc, senior scientist). He is founder or co-founder of several technology startups since 2009. He works on technology governance approaches and cybersecurity internationally - in academia, in the regulatory sector, and in the industry. He holds a professorship at the Escuela de Posgrado, Universidad de Granada, Spain, is a member of the GI e.V., the IEEE (Senior Membership, IEEE Computer Society and IEEE Education Society), the ACM (senior member) and of multiple editorial boards. You can reach him at: stantchev@computer.org.